$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/05f5ebac-3657-4a07-b229-d140b86ef39c.roa File: 05f5ebac-3657-4a07-b229-d140b86ef39c.roa (raw, json) Hash identifier: M22uCsbtIwfRBGLhMiwFswkBZq0Jv2xwRMLri0hlMic= Subject key identifier: 1F:01:72:B3:D2:80:34:19:19:02:FF:08:A6:DF:4D:2C:BC:6B:DB:CE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 53E3B51CBE0EE5D90954573EEC578C60F8B35E70 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/05f5ebac-3657-4a07-b229-d140b86ef39c.roa Signing time: Mon 13 Oct 2025 16:40:01 +0000 ROA not before: Mon 13 Oct 2025 16:40:01 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e3:b5:1c:be:0e:e5:d9:09:54:57:3e:ec:57:8c:60:f8:b3:5e:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 13 16:40:01 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=1005c31a6e67694d125dcb2da1aba00d0e1b8c1145f2f664039eb1da6cc075ff, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:54:8e:3e:06:30:2c:03:33:aa:5d:29:99:27: 88:e2:5e:0d:bb:11:fa:69:d6:83:bc:f5:b7:34:69: 9f:d9:af:53:64:e6:6a:51:62:29:04:10:b9:40:ae: 23:bd:f1:17:6a:e1:e3:7a:b9:d6:4e:fe:e6:4e:0e: e1:ac:a6:6f:c4:38:e7:de:94:86:70:e1:dd:75:95: 8d:58:20:97:d7:3c:27:bd:5d:9e:68:0d:69:d9:59: d2:b5:bf:6a:23:a7:6b:06:e8:54:92:63:3f:c6:ac: 59:d6:0b:8f:e2:13:bd:97:f2:76:29:5d:15:35:70: b8:0d:1e:73:48:3b:5c:f3:f3:a2:44:8a:6b:94:37: b2:5e:af:80:7a:44:00:93:83:c3:c4:a3:d0:7d:6c: 60:d1:17:f3:7f:5a:9f:d1:c3:de:0b:09:81:e5:12: 48:4f:e4:24:a9:46:6f:9e:5b:95:19:9d:15:13:bd: e4:18:09:40:6d:15:84:6e:87:ad:fe:26:a6:b7:b1: 88:d2:62:e9:a1:89:9d:08:84:d8:b8:de:88:58:2e: 49:ef:52:72:86:c8:62:e2:4c:29:7d:f7:69:73:31: 7e:4c:09:38:99:0c:52:ea:48:3f:da:fc:58:37:f0: 53:b9:b0:f7:5a:c0:69:cc:8a:79:48:c0:a7:bd:45: 28:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:01:72:B3:D2:80:34:19:19:02:FF:08:A6:DF:4D:2C:BC:6B:DB:CE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/05f5ebac-3657-4a07-b229-d140b86ef39c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.32.0/19 Signature Algorithm: sha256WithRSAEncryption 69:2f:a1:67:9a:95:6c:e2:7d:b0:fe:30:71:b9:e3:62:85:a9: 27:fc:8e:e4:fe:72:2a:54:b1:9b:03:0e:3b:1f:f1:f5:d0:12: ad:d8:0f:bd:d0:bd:35:e3:02:d2:a1:7d:03:dd:66:bb:b2:59: 71:97:f4:f4:2c:c8:e7:cd:49:79:37:2a:93:4d:15:bb:da:3c: 10:e6:cc:0f:46:66:17:c7:3d:45:d0:63:37:79:9e:29:d7:01: 54:55:b2:2f:07:81:9f:7f:c3:21:07:21:e9:b2:18:3b:28:34: 85:26:68:04:13:a8:86:6e:d2:2d:da:84:83:95:e9:2d:a2:3a: 25:e6:06:98:41:40:92:18:97:90:2d:b3:49:66:c2:36:13:f6: 35:af:54:b3:0b:5a:9d:6a:37:c5:5e:44:9e:c3:84:28:a3:48: 09:c1:08:e2:f7:d9:93:6e:bf:55:09:93:b2:11:80:9c:a8:e6: 2a:aa:63:0c:5d:35:3d:d0:e7:75:b1:54:08:07:58:2e:d5:6d: 7c:03:e7:f5:72:2f:13:47:01:c3:23:20:5c:57:7b:61:47:7c: 9a:de:0b:0f:5a:af:db:f4:3e:34:16:29:ef:7e:db:26:71:af: 0e:f4:ea:7b:42:55:e0:29:8c:4c:cb:90:7d:cf:07:ae:b5:f3: af:45:04:26 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU+O1HL4O5dkJVFc+7FeMYPizXnAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDEzMTY0MDAxWhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDA1YzMxYTZlNjc2OTRkMTI1ZGNiMmRhMWFiYTAwZDBl MWI4YzExNDVmMmY2NjQwMzllYjFkYTZjYzA3NWZmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjVI4+BjAsAzOqXSmZJ4jiXg27Efpp1oO89bc0aZ/Zr1Nk 5mpRYikEELlAriO98Rdq4eN6udZO/uZODuGspm/EOOfelIZw4d11lY1YIJfXPCe9 XZ5oDWnZWdK1v2ojp2sG6FSSYz/GrFnWC4/iE72X8nYpXRU1cLgNHnNIO1zz86JE imuUN7Jer4B6RACTg8PEo9B9bGDRF/N/Wp/Rw94LCYHlEkhP5CSpRm+eW5UZnRUT veQYCUBtFYRuh63+Jqa3sYjSYumhiZ0IhNi43ohYLknvUnKGyGLiTCl992lzMX5M CTiZDFLqSD/a/Fg38FO5sPdawGnMinlIwKe9RSjPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHwFys9KANBkZAv8Ipt9NLLxr284wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzA1ZjVlYmFjLTM2NTctNGEwNy1iMjI5LWQxNDBiODZlZjM5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXYiSAwDQYJKoZIhvcNAQELBQADggEBAGkvoWealWzifbD+MHG542KFqSf8 juT+cipUsZsDDjsf8fXQEq3YD73QvTXjAtKhfQPdZruyWXGX9PQsyOfNSXk3KpNN FbvaPBDmzA9GZhfHPUXQYzd5ninXAVRVsi8HgZ9/wyEHIemyGDsoNIUmaAQTqIZu 0i3ahIOV6S2iOiXmBphBQJIYl5Ats0lmwjYT9jWvVLMLWp1qN8VeRJ7DhCijSAnB COL32ZNuv1UJk7IRgJyo5iqqYwxdNT3Q53WxVAgHWC7VbXwD5/VyLxNHAcMjIFxX e2FHfJreCw9ar9v0PjQWKe9+2yZxrw706ntCVeApjEzLkH3PB661869FBCY= -----END CERTIFICATE-----Generated at Mon Oct 20 20:26:33 2025 by rpki-client